Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/awzo4DHsuxVH3syg88VrItlQOv4.roa
File: awzo4DHsuxVH3syg88VrItlQOv4.roa (raw, json)
Hash identifier: YwzFr5gBb89KotDGKUuhauFAewXvfKyirCHfIo4KC5s=
Subject key identifier: 6B:0C:E8:E0:31:EC:BB:15:47:DE:CC:A0:F3:C5:6B:22:D9:50:3A:FE
Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Certificate serial: 018E858625E82B18F0D0ED3DA63021B8AC26
Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/awzo4DHsuxVH3syg88VrItlQOv4.roa
Signing time: Thu 28 Mar 2024 14:45:44 +0000
ROA not before: Thu 28 Mar 2024 14:45:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.113.66.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 10:07:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:85:86:25:e8:2b:18:f0:d0:ed:3d:a6:30:21:b8:ac:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Validity
Not Before: Mar 28 14:45:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b0ce8e031ecbb1547decca0f3c56b22d9503afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:76:87:48:7b:04:39:ec:17:e6:da:eb:1a:2e:
e0:3e:8c:45:15:b6:9a:16:aa:30:4c:5c:b1:eb:24:
a3:b1:69:02:3a:37:e3:c8:eb:76:25:62:f6:d7:30:
88:5a:a3:b1:61:b3:b5:c5:b7:c6:32:fd:82:f2:ed:
f9:f6:21:fa:24:6d:16:92:58:db:aa:0b:48:8d:48:
c2:df:41:0b:3b:76:da:9f:8a:42:75:36:8f:87:27:
14:3a:14:6e:27:3c:2c:1f:23:c8:01:e0:ba:6b:55:
d7:44:31:bd:76:75:1a:55:43:b0:f5:cb:bb:01:24:
bc:a7:23:3e:22:50:d3:68:da:78:76:a3:67:15:37:
13:de:f1:2e:87:c5:6a:38:df:39:9f:34:df:9c:63:
6d:0d:21:bf:8e:38:7c:a2:ec:40:23:88:d8:3b:d5:
46:dc:1e:91:ee:96:a8:03:00:d0:af:83:35:a6:d3:
36:84:bb:77:8f:d5:39:ed:ea:9a:57:f2:62:55:7e:
8d:26:b1:49:42:cd:c8:08:95:3f:7f:9d:4e:92:48:
bd:85:db:4a:b1:ba:ab:3a:27:04:db:e7:74:22:0a:
2b:84:91:6f:75:8b:65:95:19:2c:b1:b1:c8:93:3a:
6a:18:39:53:ca:dc:40:b8:ff:48:a0:69:d8:9d:fa:
df:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0C:E8:E0:31:EC:BB:15:47:DE:CC:A0:F3:C5:6B:22:D9:50:3A:FE
X509v3 Authority Key Identifier:
keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/awzo4DHsuxVH3syg88VrItlQOv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.66.0/23
Signature Algorithm: sha256WithRSAEncryption
41:c0:39:13:be:43:ba:87:f6:39:bf:84:b7:ce:7a:a9:ad:ba:
8f:54:aa:6c:e3:84:a1:34:7f:b6:c1:dd:02:59:56:86:97:77:
2e:ac:1a:16:88:05:9f:b4:a7:da:cb:56:56:f9:b8:ed:a6:17:
63:76:ab:c0:10:75:58:fc:32:61:27:2e:af:c0:35:b9:41:78:
74:b0:91:7b:99:0c:a5:de:b8:de:63:ae:11:2e:1e:c2:cf:36:
13:b0:ae:e4:73:2e:89:64:60:2a:5e:ac:66:53:a7:59:af:11:
86:3c:a1:2b:d7:3f:89:6f:36:8a:9a:27:16:56:d5:9f:b4:02:
e4:be:53:d2:a8:ab:78:5c:7b:7f:19:c1:dc:1c:63:77:1a:c8:
fe:e4:aa:f1:77:fe:6d:6c:ce:be:e0:9e:23:05:cc:ac:89:09:
9a:d3:28:36:c0:f6:91:54:46:5a:2b:0e:2f:33:bd:8c:59:ea:
1c:fb:5a:93:d5:4f:f9:1c:10:b3:cd:92:2e:1d:ff:a0:76:84:
31:34:38:2c:c7:5a:f6:6a:91:d8:7e:bf:d7:8b:e1:1d:c3:bf:
e6:3f:f0:1e:ab:a1:3c:04:ff:15:85:55:82:67:37:a8:0f:dc:
32:cc:20:34:6d:7a:a0:c8:65:f3:b9:19:21:cd:38:44:5f:16:
c3:d4:74:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:50 2024 by rpki-client on console-fra.rpki-client.org